VMware Workstation (15.x before 15.5.1) and Horizon View Agent (7.10.x before 7.10.1 and 7.5.x before 7.5.4) contain a DLL hijacking vulnerability due to insecure loading of a DLL by Cortado Thinprint. Successful exploitation of this issue may allow attackers with normal user privileges to escalate their privileges to administrator on a Windows machine where Workstation or View Agent is installed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware horizon_view_agent |
||
vmware workstation |